feat(plugin): scope secret-ref config by company

2026-06-19 12:10:37 +09:00 · 2026-06-03 06:31:01 +00:00 · 2026-06-03 06:31:01 +00:00 · db0ef46900
commit db0ef46900
parent 62863126a3
19 changed files with 587 additions and 102 deletions
--- a/server/src/services/plugin-secrets-handler.ts
+++ b/server/src/services/plugin-secrets-handler.ts
@ -34,14 +34,17 @@
 */

 import type { Db } from "@paperclipai/db";
+import type { PaperclipPluginManifestV1 } from "@paperclipai/shared";
 import {
  collectSecretRefPaths,
  isUuidSecretRef,
  readConfigValueAtPath,
 } from "./json-schema-secret-refs.js";
+import { pluginRegistryService } from "./plugin-registry.js";
+import { secretService } from "./secrets.js";

-export const PLUGIN_SECRET_REFS_DISABLED_MESSAGE =
-  "Plugin secret references are disabled until company-scoped plugin config lands";
+export const PLUGIN_SECRET_REFS_REQUIRE_COMPANY_MESSAGE =
+  "Plugin secret references require an active company-scoped runtime context";

 // ---------------------------------------------------------------------------
 // Error helpers
@ -125,6 +128,8 @@ export function extractSecretRefPathsFromConfig(
 export interface PluginSecretsResolveParams {
  /** The secret reference string (a secret UUID). */
  secretRef: string;
+  /** The company whose scoped plugin config is active for this invocation. */
+  companyId?: string | null;
 }

 /**
@ -139,6 +144,8 @@ export interface PluginSecretsHandlerOptions {
   * that reach the plugin worker.
   */
  pluginId: string;
+  /** Plugin manifest, used to extract schema-declared secret-ref paths. */
+  manifest?: PaperclipPluginManifestV1 | null;
 }

 /**
@ -199,24 +206,17 @@ function createRateLimiter(maxAttempts: number, windowMs: number) {
 export function createPluginSecretsHandler(
  options: PluginSecretsHandlerOptions,
 ): PluginSecretsService {
-  const { pluginId } = options;
+  const { pluginId, manifest } = options;
+  const registry = pluginRegistryService(options.db);
+  const secrets = secretService(options.db);

-  // Rate limit: max 30 resolution attempts per plugin per minute
+  // Rate limit: max 30 resolution attempts per plugin+company per minute.
  const rateLimiter = createRateLimiter(30, 60_000);

  return {
    async resolve(params: PluginSecretsResolveParams): Promise<string> {
      const { secretRef } = params;

-      // ---------------------------------------------------------------
-      // 0. Rate limiting — prevent brute-force UUID enumeration
-      // ---------------------------------------------------------------
-      if (!rateLimiter.check(pluginId)) {
-        const err = new Error("Rate limit exceeded for secret resolution");
-        err.name = "RateLimitExceededError";
-        throw err;
-      }
-
      // ---------------------------------------------------------------
      // 1. Validate the ref format
      // ---------------------------------------------------------------
@ -230,9 +230,41 @@ export function createPluginSecretsHandler(
        throw invalidSecretRef(trimmedRef);
      }

-      // Fail closed until plugin config and worker runtime both carry an
-      // explicit company scope for secret bindings and resolution.
-      throw new Error(PLUGIN_SECRET_REFS_DISABLED_MESSAGE);
+      const companyId = typeof params.companyId === "string" ? params.companyId.trim() : "";
+      const rateLimitKey = `${pluginId}:${companyId || "__no_company__"}`;
+      if (!rateLimiter.check(rateLimitKey)) {
+        const err = new Error("Rate limit exceeded for secret resolution");
+        err.name = "RateLimitExceededError";
+        throw err;
+      }
+
+      if (!companyId) {
+        throw new Error(PLUGIN_SECRET_REFS_REQUIRE_COMPANY_MESSAGE);
+      }
+
+      const configRow = await registry.getConfig(pluginId, companyId);
+      const refsBySecret = extractSecretRefPathsFromConfig(
+        configRow?.configJson ?? {},
+        manifest?.instanceConfigSchema,
+      );
+      const paths = [...(refsBySecret.get(trimmedRef) ?? [])];
+      if (paths.length === 0) {
+        throw new Error("Secret is not referenced by this company's plugin config");
+      }
+      if (paths.length > 1) {
+        throw new Error(
+          `Secret reference is ambiguous in this company's plugin config at: ${paths.join(", ")}`,
+        );
+      }
+
+      return secrets.resolveSecretValue(companyId, trimmedRef, "latest", {
+        consumerType: "plugin",
+        consumerId: pluginId,
+        configPath: paths[0],
+        actorType: "plugin",
+        actorId: pluginId,
+        pluginId,
+      });
    },
  };
 }